IPS Signature Database Update
| Name | ips.sig | |||
| Version | 3.0.233 | |||
| StoneOS | Firewall 5.5R8P2 or above, and NIPS/IDS 5.5R5-3.5 or above, and BDS 5.5R8-3.3 or above | |||
| Release Date | 2024-11-18 | |||
| New Signature (19) |
Rule ID | Rule Name | StoneOS | Detail |
| 338543 | Mingyuanyun ERP GetErpConfig.aspx Information Leakage Vulnerability | 5.0R4 or above | click for more information | |
| 338530 | WordPress Woocommerce Plugin Arbitrary File Upload Vulnerability (CVE-2024-50482) | 5.5R5 or above | click for more information | |
| 338540 | Yonyou U8-Cloud esnserver Arbitrary File Upload Vulnerability | 5.0R4 or above | click for more information | |
| 338541 | Topvision Yibao OA ExecuteSqlForDataSet SQL Injection Vulnerability | 5.0R4 or above | click for more information | |
| 338528 | Ivanti Cloud Services Appliance Path Traversal Vulnerability (CVE-2024-8963) | 5.0R4 or above | click for more information | |
| 338538 | WordPress Signup Page Plugin Privilege Promotion Vulnerability (CVE-2024-50475) | 5.5R5 or above | click for more information | |
| 338529 | WordPress Wux Blog Editor Plugin Arbitrary File Upload Vulnerability (CVE-2024-9932) | 5.5R5 or above | click for more information | |
| 338539 | WordPress GRUN Costino Spendenformular Plugin Privilege Promotion Vulnerability (CVE-2024-50476) | 5.5R5 or above | click for more information | |
| 338526 | Cyberpanel getresetstatus Remote Code Execution Vulnerability (CVE-2024-51378) | 5.5R8 or above | click for more information | |
| 338536 | Yonyou U8-Cloud uapbd.refdef.query SQL Injection Vulnerability | 5.5R5 or above | click for more information | |
| 338527 | Cyberpanel upgrademysqlstatus Remote Code Execution Vulnerability (CVE-2024-51567) | 5.5R4 or above | click for more information | |
| 338537 | Zen Tao 20.7 Arbitrary File Read Vulnerability | 5.0R4 or above | click for more information | |
| 338534 | WordPress Ultimate Member Plugin SQL Injection Vulnerability (CVE-2024-1071) | 5.0R4 or above | click for more information | |
| 338544 | Topsec Operation and Maintenance Security Audit System Arbitrary File Read Vulnerability | 5.0R4 or above | click for more information | |
| 338535 | Yonyou U8-Cloud approveservlet SQL Injection Vulnerability | 5.5R5 or above | click for more information | |
| 338545 | ZHENYUN SRM SpEL Expression Injection Vulnerability | 5.0R4 or above | click for more information | |
| 338532 | Jinher OA C6 ApproveRemindSetExec.aspx XXE Vulnerability | 5.0R4 or above | click for more information | |
| 338542 | Topvision Yibao OA ExecuteQueryNoneResult SQL Injection Vulnerability | 5.0R4 or above | click for more information | |
| 338533 | Lunary 1.4.2 SQL Injection Vulnerability (CVE-2024-7456) | 5.5R8 or above | click for more information | |
| Updated Signature (4) |
Rule ID | Rule Name | StoneOS | Detail |
| 337095 | NagiosXI menuaccess.php SQL Injection Vulnerability (CVE-2018-10738) | 5.0R4 or above | Click here for more information | |
| 338501 | Cyberpanel getresetstatus Remote Code Execution Vulnerability (CVE-2024-51378) | 5.5R5 or above | Click here for more information | |
| 338502 | Cyberpanel upgrademysqlstatus Remote Code Execution Vulnerability (CVE-2024-51567) | 5.0R4 or above | Click here for more information | |
| 332471 | SAP NetWeaver AS Directory Traversal Vulnerability (CVE-2020-6286) | 5.0R4 or above | Click here for more information | |